R
    RenderBeam
    Legal

    Privacy Policy

    Last updated May 7, 2026 · Effective immediately

    In short: We collect only what we need to run a pre-rendering service: account info, project configuration, and bot-traffic logs. We never sell your data, never use it to train AI models, and you can export or delete it at any time.

    1. Who we are

    RenderBeam (the “Service”) is owned and operated by Shape Your Brand LLC, a Florida (USA) limited liability company (“we”, “us”, “our”), trading as RenderBeam. Parent brand: shapeyourbrand.com. For the purposes of the United States/UK General Data Protection Regulation (“GDPR”), Shape Your Brand LLC is the data controller for personal data about account holders, and a data processor for any personal data contained in pages we pre-render on behalf of customers.

    Contact: privacy@renderbeam.com.

    2. What we collect and why

    Account data

    • Email address & full name — to create and authenticate your account, send service emails, and provide support. Lawful basis: contract.
    • Password hash (managed by Supabase Auth) or OAuth identifier if you sign in with Google.
    • Billing details (plan, status, Stripe customer ID, invoice history). Card numbers are stored by Stripe, never by us. Lawful basis: contract.

    Project & configuration data

    • Domains you add, bot-profile selections, cache duration, API key prefixes (full keys are hashed with SHA-256 and never stored in clear text).

    Operational telemetry

    • Render logs: timestamp, URL, bot user-agent, HTTP status, response time, cache hit/miss. Used to power your dashboard and to bill metered usage. Lawful basis: contract and legitimate interest (service operation).
    • Hashed IP addresses (SHA-256) for rate-limiting and abuse prevention. We do not store raw IPs in application tables. Lawful basis: legitimate interest.
    • Aggregated analytics via SnapSello Insights — cookie-less, no cross-site tracking, no personal identifiers collected.

    Support data

    • Messages you send via the Contact or Support pages, plus any attachments. Lawful basis: legitimate interest.

    3. What we do NOT do

    • We do not sell or rent personal data to anyone.
    • We do not use your data, your customers' pages, or your render logs to train AI models.
    • We do not set advertising or cross-site tracking cookies.
    • We do not profile users for automated decision-making with legal effect.

    4. Pre-rendered page content

    When the Service pre-renders a page on behalf of a customer, the resulting HTML is cached so it can be served to bots on subsequent requests. We treat that HTML as customer content. We process it only to deliver the Service, and we delete it when you delete the project or when the configured cache TTL expires. If pages contain personal data, the customer is the controller and we act as processor — see our Data Processing Addendum.

    5. Retention

    • Raw render logs: retained for the period defined by your plan (currently 7–730 days), then deleted automatically.
    • Aggregated daily/bot/page stats: retained per plan's analytics history window.
    • Cached HTML: until your configured cache TTL expires or you purge it.
    • Anonymous visibility-checker results: 180 days, then deleted if not converted to an account.
    • Account & billing records: while your account is active and for up to 7 years after closure where required by tax/accounting law.
    • Support messages: up to 3 years after the ticket is closed.

    6. Sub-processors & international transfers

    We rely on the third parties listed on our Sub-processors page (Supabase, Cloudflare, Render.com, Vercel, Stripe, Resend, OpenAI, SnapSello). All are located in the United States; transfers rely on the United States Standard Contractual Clauses and, where applicable, the US Data Privacy Framework.

    7. Your rights

    Under United States, UK GDPR, and similar laws (incl. CCPA/CPRA), you have the right to:

    • Access — download a portable JSON copy of all data we hold about you from Settings → “Download my data”.
    • Rectify — update your profile from Settings.
    • Erase — request account deletion at privacy@renderbeam.com; we delete within 30 days unless we must retain records for legal reasons.
    • Restrict or object to processing based on legitimate interest.
    • Portability — the JSON export above.
    • Withdraw consent at any time, where processing is based on consent.
    • Lodge a complaint with your local data-protection supervisory authority in the United States or your country of residence.

    For California residents: we do not “sell” or “share” personal information as defined by the CCPA/CPRA.

    8. Security

    We use TLS in transit, encryption at rest (provided by Supabase/Cloudflare), Row-Level Security on every database table, hashed API keys, hashed IP addresses, and the principle of least privilege for staff access. See our Security Overview for more.

    9. Children

    The Service is not directed to anyone under 16 and we do not knowingly collect data from children.

    10. Changes to this policy

    We will post material changes here and, for significant changes, notify account holders by email at least 14 days before they take effect.

    Explore RenderBeam

    Learn what we do, how we price it, and how to get set up.

    Product overviewHow RenderBeam serves bots and AI crawlers your fully rendered pages.Pricing & plansSlider-based pricing with a free trial. No card required to start.DocumentationQuick start, integration guides, and best practices.Free SEO toolsrobots.txt, llms.txt, sitemap and visibility checkers.
    Start free trialContact us